How I fixed BWAPP

 First off all two words about this web application. BWAPP is the most insecure application ever. Sounds silly and for most users has no sense at all. This app was created to train programmists and administration. It can spot different application issues which are common for programmers beginners.

One day my friend decided to make a ZOOM festival for young students. We created some legends to make tasks interesting. I wrote a small program for moderators and participants to understand and explain the progress and log users' actions, who may attack our fake server inside a virtual machine.

Everything was ok before I upgrade PHP. New PHP appeared more secure than previous, BWAPP stoped work secure issues were blocked.

That was a problem, I don't want to install the old PHP version, so I started checking. Finally, I found the issue in the PDO class connection, and rewrite the main BWAPP class.



Comments

Post a Comment

Popular posts from this blog

Connecting Wemos (ESP8266) to MB 4 Bot

Image
You need a WEMOS card or ESP32 with Arduino Board and Arduino IDE to load scetches for this example. 1. Download Arduino IDE from here - https://arduino.cc 2. Open Arduino IDE properties and in the new window insert this link: http://arduino.esp8266.com/stable/package_esp8266com_index.json into the Additional link for Boards' Manager section 3. Then open the Tools menu and choose Board Manager in the Board submenu. 4. Type WEMOS in the search string of the Board Manager Window and install ESP8266 and ESP8266 Community drivers. 5. The Last step is going back to Tools Menu and selecting your board in the submenu Boards. In my case, it was LOLIN (WEMOS R1 D2) This is a code example you may copy and paste for your WEMOS. 
Read more

About Game "8 Planes"

Image
This game was created several years ago as supplementary compulsory material for the basic programming course for beginners. The main instrument is Processing 3 for the course.  It includes 16 basic themes: commands, variables, operators, built-in and user's functions, System API, Network and etc. Games as projects for the course make learning more interesting and help to understand deeper complicated and abstract categories. This game used to show the process of creating step by step in detail. The game appears interesting not only for the class, and then I decided to create a more complicated material based on it. So I add a server to create multiple users' game and the game which is possible to play with friends. I call the type of such games - Big Screen Game, or Croud game. Further, I will write about Big Screen Game and what has happened. Now, you may visit our page on ITCH and download 8 Game Planes for PC. Visit ITCH
Read more

Connecting to the Open Web DB from Processing 3

Image
  // This scatch helps you to understand the basics of connecting to the Marker Soft Site.  //Copy and paste. Don't forget to change the access key to yours! //The registration is free. You may use three keys to connect your devices to this network //This is the link  https://markerbank.com/cab.php //////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////// String txOut="";  int dl=100; void setup(){      size(400,300);   background(255,255,0);   txOut=txMCWeb();   textSize(24);   fill(0);   text(txOut,width/2-(textWidth(txOut)/2),120);       } void draw(){   background(255,255,0);   if (dl<0){   txOut=txMCWeb();   dl=100;   }   textSize(24);   fill(0);   text(txOut,width/2-(textWidth(txOut)/2),120);      String txOut2="";   fill(255,0,0);   textSize(18);   dl--; ...
Read more